WordPress RegistrationMagic 漏洞列表

共找到 2 个与 WordPress RegistrationMagic 相关的漏洞

📅 加载漏洞趋势中...

CVE-2021-24862: WordPress RegistrationMagic <5.0.1.6 - Authenticated SQL Injection POC

日期: 2025-08-01 | 影响软件: WordPress RegistrationMagic

WordPress RegistrationMagic plugin before 5.0.1.6 contains an authenticated SQL injection vulnerability. The plugin does not escape user input in its rm_chronos_ajax AJAX action before using it in a SQL statement when duplicating tasks in batches. An attacker can possibly obtain sensitive information, modify data, and/or execute unauthorized administrative operations in the context of the affected site. This is a potential issue in both WordPress and WordPress Administrator.
CVE-2021-24862: WordPress RegistrationMagic <5.0.1.6 - Authenticated SQL Injection POC

日期: 2025-08-01 | 影响软件: WordPress RegistrationMagic

WordPress RegistrationMagic plugin before 5.0.1.6 contains an authenticated SQL injection vulnerability. The plugin does not escape user input in its rm_chronos_ajax AJAX action before using it in a SQL statement when duplicating tasks in batches. An attacker can possibly obtain sensitive information, modify data, and/or execute unauthorized administrative operations in the context of the affected site. This is a potential issue in both WordPress and WordPress Administrator.